A China-linked APT has built an operational relay boxes (ORB) network of more than 1,000 backdoored nodes for espionage purposes, SecurityScorecard reports.
The prolonged espionage infrastructure campaign, dubbed LapDogs (PDF), has been targeting IT, media, networking, real estate, and other industries in the US and Southeast Asian countries, including Japan, South Korea, Hong Kong, and Taiwan.
As part of the campaign, the threat actor has been infecting small office/home office (SOHO) routers with a custom backdoor named ShortLeash, which provides stealthy, long-term access to the compromised devices.
https://www.securityweek.com/chinese-ap ... structure/